DescriptionIceCast 2.20 allows remote attackers to bypass the XSL parser and obtain the source for XSL files via a request for a .xsl file with a trailing . (dot).
Overall state of this security issue: Does not affect SUSE products
This issue is currently rated as having moderate severity.
|National Vulnerability Database|
List of released packages
|Product(s)||Fixed package version(s)||References|
|openSUSE Tumbleweed|| ||Patchnames: |
openSUSE Tumbleweed GA icecast-2.4.4-2.1
SUSE Timeline for this CVECVE page created: Fri Jun 28 01:08:10 2013
CVE page last modified: Fri Oct 7 12:45:30 2022